pkg:maven/org.jenkins-ci.plugins/ecutest
Type
maven
Namespace
org.jenkins-ci.plugins
Name
ecutest
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/ecutest package.
Medium
2
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.23.1 |
CVE-2021-21612
|
JENKINS:SECURITY-2057 | Credentials stored in plain text by `ecutest` | low |
2021-01-13T00:00:00
(3 years ago) |
|
Fixed | = 2.24 |
CVE-2021-21612
|
JENKINS:SECURITY-2057 | Credentials stored in plain text by `ecutest` | low |
2021-01-13T00:00:00
(3 years ago) |
|
Affected | <= 2.3 |
CVE-2018-1999025
|
JENKINS:SECURITY-932 | TraceTronic ECU-TEST Plugin globally and unconditionally disables SSL/TLS certificate validation | medium |
2018-07-30T00:00:00
(6 years ago) |
|
Fixed | = 2.4 |
CVE-2018-1999025
|
JENKINS:SECURITY-932 | TraceTronic ECU-TEST Plugin globally and unconditionally disables SSL/TLS certificate validation | medium |
2018-07-30T00:00:00
(6 years ago) |
|
Affected | <= 2.3 |
CVE-2018-1999026
|
JENKINS:SECURITY-994 | CSRF vulnerability and missing permission checks in TraceTronic ECU-TEST Plugin allowed server-side request forgery | medium |
2018-07-30T00:00:00
(6 years ago) |
|
Fixed | = 2.4 |
CVE-2018-1999026
|
JENKINS:SECURITY-994 | CSRF vulnerability and missing permission checks in TraceTronic ECU-TEST Plugin allowed server-side request forgery | medium |
2018-07-30T00:00:00
(6 years ago) |